Apotea is Sweden's largest online pharmacy, committed to making healthcare products accessible and efficient for everyone. We're on a mission to build the next generation of e-commerce and logistics, from scratch, but with lots of domain expertise and genuine care for our customers. Our vision in the Tech department is to redefine how AI and automation power modern businesses — not by forcing AI into traditional workflows, but by creating AI-driven and automated systems that give humans control, insight, and the ability to apply their expertise where it matters most.
The Core Technology Team shapes the architectural foundation that supports everything we do — from e-commerce and logistics to data, AI/ML, and customer experience. We ensure that every development aligns with our long-term vision and contributes to Apotea's growth.
We are now looking for a Lead Security Engineer to take end-to-end ownership of Apotea's security engineering strategy, ensure we remain resilient and compliant, and enable our teams to build and innovate securely at scale.
As Lead Security Engineer, you'll be at the center of Apotea's transformation. You will define, implement, and evolve Apotea's security practices across AWS (serverless-first), e-commerce, logistics, and data platforms. This role combines strategic leadership with hands-on engineering. At Apotea, engineers are expected to take ownership of the full software lifecycle, so your role will be both to implement security yourself and to empower others to build securely. You'll work closely with architects, engineers, and business stakeholders to ensure every development is secure, resilient, and aligned with regulations such as GDPR and Swedish healthcare standards.
You will also be the first-line responsible person for all technical security initiatives in the Tech department, defining guardrails, monitoring risks, and ensuring our systems are protected against evolving threats. Part of your role will be to define maturity plans, guide secure-by-design practices, and lead our response capability when incidents occur. You will be responsible for defining secure development practices for vibe coding and the use of AI coding assistants. You will help engineers use AI responsibly, ensuring that generated code meets Apotea's security standards, avoids data leakage, and aligns with compliance and coding guidelines. Finally, you must be able to take complex security concepts and communicate them clearly, aligning the whole organization around security as a shared responsibility.
We are looking for someone with:
Nice to have:
Why join Apotea?
Apotea.se is Sweden's largest online pharmacy, with the country's broadest range of over 32,000 non-prescription items and nearly 19,000 prescription drugs for humans and animals. Recognized as Sweden's most sustainable e-commerce company (Sustainable Brand Index 2021), we simplify everyday life for our customers with fast deliveries and expert advice. In 2024, Apotea reached a turnover of SEK 6.5 billion and currently employs about 1,000 people across Stockholm, Lidingö, and Morgongåva.
Apotea is an inclusive employer that values diversity. We welcome all applicants and strive to create a work environment where people, regardless of background, gender, age, religion, or disability, can thrive and grow.
Application: Do not hesitate to send in your application already today. For more information or questions, visit our career page or contact us at jobb@apotea.se. We do not accept applications via email.